Comply

Key Features

Pontus Vision GDPR Open Source IT Solution is the only one in the market that combines the following features in one product:

Open Source

All Pontus Vision GDPR software has been open sourced. The UK Government department where the platform was born has very progressive attitudes for using and producing open source software. This gives the customers a clear view of the code, and prevents vendor lock-in.

Cloud Neutral

Our solution does not rely on any cloud vendor-specific technologies. The solution can be deployed on-prem, within any cloud vendor that supports Linux Servers, and even across cloud vendors for extra resiliency.

Cyber Security

We have had to get our architecture and design revised by a number of accreditors including reviews from NCSC/GCHQ. This enables customers to be reassured that the platform is as safe as their needs require.

Scalable Automation

The Pontus Vision GDPR Architecture and design have as few manual steps as possible to enable vast quantities of data to be processed. The solution is able to scale to 100s of billions of records.

Many Formats

Pontus Vision GDPR was designed and built as a modular solution that is capable of taking data from hundreds of different formats. This also includes the ability to create bespoke sources and create a reusable library of components.

ARCHITECTURE

Our architecture follows our simple three steps:

Extract

This is where IT Operations and Business Analysts help connect to your data sources.

This enables customers to extract personal information from a variety of different areas. This includes e-mails, MS Office documents, Relational Databases, CRM Systems, and Big Data Lakes.

We can also create bespoke connectors for any system that can be accessed by a Java or REST API. We are using a powerful open source flow management infrastructure (Pontus-NiFi) based on the Apache NiFi project; that enables users to convert data from a variety of platforms ready for the Track phase.

Track

This is where data analysts can help keep track of your data.

This enables customers to track the origin of the data, and figure out what is personal data. This includes where the data came from, how to retrieve it, delete it, and update it.

A powerful graph database stores the data in a common format called Person, Object, Location, Event (POLE). We can run either Online Transaction Processing (OLTP), or Online Analytics Processing (OLAP) queries on the data to clean up the application. We use a gremlin Tinkerpop - compliant graph database do front those queries, and store the data into Apache Hbase and index it with Elastic Search.

Comply

This is where Data Protection Officers have a web portal with a single view of the Data.

The portal has GDPR Compliance Scores for each of the 12 ICO steps to compliance. It also gives the ability to fulfil data subject access requests automatically or manually. Lastly, it provides data breach analysis (figure out data impact from security breaches).

Each of the 12 ICO steps to compliance has its own area in the web portal. Data protection officers can navigate through the organisation's data in a easy-to-use navigation panel, and quickly get to the bottom of why a business is not compliant in a particular area.